Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
File: 3keU2fyrI-wF3d1QSKP8cgQAKio.mft (raw, json)
Hash identifier: YJWsrtuI18ZGOWPKBvf8X5RyvWZ4SVxkTMBtUrmGlkU=
Subject key identifier: FE:A6:3D:A0:73:66:2A:8E:4A:6F:82:B8:1B:75:53:7A:F3:69:BC:C9
Authority key identifier: DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
Certificate issuer: /CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Certificate serial: 01951247B57CCFE268509F8ED657B821E08C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
Manifest number: 0D86
Signing time: Mon 17 Feb 2025 05:00:44 +0000
Manifest this update: Mon 17 Feb 2025 05:00:44 +0000
Manifest next update: Tue 18 Feb 2025 05:00:44 +0000
Files and hashes: 1: 3keU2fyrI-wF3d1QSKP8cgQAKio.crl (hash: 44FMNCPPcgAUk/a9u1RuXymKV3oiWdFm2XBnCV9nvWo=)
2: ZK9gU4FBN8KUQTPHGhgGaXPIWjk.roa (hash: YFHfAWvmuV1pyKRAlUfEUWxi+ZLKrTZD/d9TC0Av1JQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:47:b5:7c:cf:e2:68:50:9f:8e:d6:57:b8:21:e0:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de4794d9fcab23ec05dddd5048a3fc7204002a2a
Validity
Not Before: Feb 17 05:00:44 2025 GMT
Not After : Feb 18 05:00:44 2025 GMT
Subject: CN=fea63da073662a8e4a6f82b81b75537af369bcc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4b:2a:69:b2:69:c6:94:9c:2d:a2:72:f4:ca:
5c:5f:79:34:0a:12:b9:3a:65:cd:97:ea:76:4a:e7:
94:0c:b1:a8:b4:e8:4f:6a:4e:db:3f:29:43:c5:55:
e4:3b:a6:dc:c6:1a:4d:b8:0b:1f:07:5c:5b:0f:c5:
dd:b8:0f:4b:60:8e:d8:ee:32:d5:40:2c:23:cc:13:
97:70:35:c1:b0:51:5d:c4:af:8b:92:40:0c:32:c1:
3f:71:04:23:36:33:66:ea:c9:5a:2c:3c:7c:93:61:
65:49:24:3c:ed:8d:48:d6:0a:e5:1d:35:3a:6b:aa:
3e:46:c3:df:f3:a4:3c:29:92:a3:9a:c3:70:8a:19:
10:c0:18:60:15:d0:01:51:44:60:00:ed:54:cf:77:
73:7c:84:3b:eb:5d:aa:aa:ab:d1:b1:88:08:b2:95:
97:10:27:98:7e:1d:dc:ae:81:52:88:53:1f:6c:c3:
b5:59:e2:7f:7b:5e:f6:bd:34:1b:df:7f:93:6a:78:
49:45:93:28:db:59:9c:d3:7c:ab:bb:9b:42:d1:18:
8d:2e:ef:25:41:e7:5c:73:14:ce:6e:84:0e:63:31:
3f:44:65:e5:f8:38:91:8b:e1:1f:20:86:b1:05:89:
86:6a:22:83:34:f5:0a:79:6d:0f:e7:63:6f:cc:e3:
48:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:A6:3D:A0:73:66:2A:8E:4A:6F:82:B8:1B:75:53:7A:F3:69:BC:C9
X509v3 Authority Key Identifier:
keyid:DE:47:94:D9:FC:AB:23:EC:05:DD:DD:50:48:A3:FC:72:04:00:2A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3keU2fyrI-wF3d1QSKP8cgQAKio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0800fe-9bd2-488b-8c42-f011293953f5/1/3keU2fyrI-wF3d1QSKP8cgQAKio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:d2:55:6f:21:27:d8:ab:e7:4d:37:04:39:20:e5:e7:7b:fb:
52:c2:af:9b:73:0e:24:62:ca:a8:4a:7c:2a:98:bf:5f:4b:c3:
fc:56:25:2e:18:8c:6e:b1:a6:04:20:22:e2:5c:11:fe:9a:4b:
7b:8b:c7:58:97:8c:47:dd:51:c5:91:72:c1:c7:1d:f5:f7:c5:
be:ce:79:1b:f5:cd:f5:55:23:63:51:25:4e:ec:05:09:ee:6b:
e4:2e:64:0b:2a:2b:52:fe:18:3e:89:f5:2c:bc:18:5a:2a:da:
bf:38:60:4b:da:80:a4:09:1c:76:d3:d6:db:88:33:2c:98:c9:
f1:e6:c8:3b:a8:99:c3:b8:f2:0c:8d:1d:6d:8a:ef:15:42:9f:
34:6c:43:ff:37:4f:54:67:3f:61:38:1f:09:b5:55:a2:58:1f:
f6:48:d0:b9:fe:cd:3e:1d:6b:6d:52:71:cb:78:b5:31:8f:70:
43:e2:24:6f:37:cb:ac:4a:98:60:24:e0:cd:36:1a:e7:ae:89:
8c:6f:98:e5:37:25:8d:8c:06:4c:4e:e9:1f:a2:98:9d:15:da:
c4:68:29:b2:17:38:c3:d5:e4:41:21:4c:f2:02:08:aa:bd:57:
56:1a:c4:b2:f1:52:7d:9e:62:ca:f9:6d:3e:6e:41:58:e2:cd:
5f:d4:10:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUSR7V8z+JoUJ+O1le4IeCMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlNDc5NGQ5ZmNhYjIzZWMwNWRkZGQ1MDQ4YTNmYzcyMDQw
MDJhMmEwHhcNMjUwMjE3MDUwMDQ0WhcNMjUwMjE4MDUwMDQ0WjAzMTEwLwYDVQQD
EyhmZWE2M2RhMDczNjYyYThlNGE2ZjgyYjgxYjc1NTM3YWYzNjliY2M5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0sqabJpxpScLaJy9MpcX3k0ChK5
OmXNl+p2SueUDLGotOhPak7bPylDxVXkO6bcxhpNuAsfB1xbD8XduA9LYI7Y7jLV
QCwjzBOXcDXBsFFdxK+LkkAMMsE/cQQjNjNm6slaLDx8k2FlSSQ87Y1I1grlHTU6
a6o+RsPf86Q8KZKjmsNwihkQwBhgFdABUURgAO1Uz3dzfIQ7612qqqvRsYgIspWX
ECeYfh3croFSiFMfbMO1WeJ/e172vTQb33+TanhJRZMo21mc03yru5tC0RiNLu8l
QedccxTOboQOYzE/RGXl+DiRi+EfIIaxBYmGaiKDNPUKeW0P52NvzONIBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP6mPaBzZiqOSm+CuBt1U3rzabzJMB8GA1UdIwQY
MBaAFN5HlNn8qyPsBd3dUEij/HIEACoqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2tlVTJmeXJJLXdGM2QxUVNLUDhjZ1FBS2lvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8wODAwZmUtOWJkMi00ODhiLThjNDIt
ZjAxMTI5Mzk1M2Y1LzEvM2tlVTJmeXJJLXdGM2QxUVNLUDhjZ1FBS2lvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8wODAwZmUtOWJkMi00ODhiLThjNDItZjAxMTI5Mzk1M2Y1
LzEvM2tlVTJmeXJJLXdGM2QxUVNLUDhjZ1FBS2lvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEdJVbyEn
2KvnTTcEOSDl53v7UsKvm3MOJGLKqEp8Kpi/X0vD/FYlLhiMbrGmBCAi4lwR/ppL
e4vHWJeMR91RxZFywccd9ffFvs55G/XN9VUjY1ElTuwFCe5r5C5kCyorUv4YPon1
LLwYWiravzhgS9qApAkcdtPW24gzLJjJ8ebIO6iZw7jyDI0dbYrvFUKfNGxD/zdP
VGc/YTgfCbVVolgf9kjQuf7NPh1rbVJxy3i1MY9wQ+IkbzfLrEqYYCTgzTYa566J
jG+Y5TcljYwGTE7pH6KYnRXaxGgpshc4w9XkQSFM8gIIqr1XVhrEsvFSfZ5iyvlt
Pm5BWOLNX9QQFQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:40 2025 by rpki-client